$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCREE/fvvYSjfKQUyyZHqdWriCXrk6G8Y.roa File: fvvYSjfKQUyyZHqdWriCXrk6G8Y.roa (raw, json) Hash identifier: EJ65ceroC+DuPGQRQfr03tPEoUruws4ugmKsftG1avA= Subject key identifier: 7E:FB:D8:4A:37:CA:41:4C:B2:64:7A:9D:5A:B8:82:5E:B9:3A:1B:C6 Certificate issuer: /CN=3B49B87A3FF389634C7D090D76DAEAA96FEEFD90 Certificate serial: 0C93 Authority key identifier: 3B:49:B8:7A:3F:F3:89:63:4C:7D:09:0D:76:DA:EA:A9:6F:EE:FD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/fvvYSjfKQUyyZHqdWriCXrk6G8Y.roa Signing time: Mon 10 Feb 2025 13:50:48 +0000 ROA not before: Mon 10 Feb 2025 13:50:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18183 IP address blocks: 103.189.132.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 10:48:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3219 (0xc93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B49B87A3FF389634C7D090D76DAEAA96FEEFD90 Validity Not Before: Feb 10 13:50:48 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7EFBD84A37CA414CB2647A9D5AB8825EB93A1BC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:89:20:dc:b7:05:0a:71:df:b2:60:a9:25:78: 60:f2:36:47:df:9f:94:2b:26:d5:33:8d:ef:31:b9: 84:06:5a:7c:e4:76:d8:ba:c9:c4:78:b1:73:ef:4a: 19:0b:2d:84:74:04:6e:f7:71:59:f4:9e:f1:b2:83: a1:5a:79:df:1f:3a:c8:81:9c:b9:37:73:ba:05:d4: b4:8a:f6:54:68:75:cf:b9:98:da:2f:8a:1d:1e:b9: 62:ec:a0:bb:41:e3:ff:0c:5c:25:49:42:87:91:9a: 44:b8:47:86:63:41:e7:02:a7:f9:e2:47:0d:ac:a9: 82:8a:09:46:c0:34:be:72:b8:39:2c:25:a0:75:a2: 97:99:c2:ea:00:03:f7:5f:5e:3d:3e:a9:89:b5:48: 9c:2d:4a:ea:c4:b3:ff:b4:28:97:e1:07:2a:7d:95: e4:fb:8a:d6:0e:09:97:ea:f6:a4:02:c2:ce:f2:e5: 91:bd:07:98:c6:f6:bb:20:cd:bf:1d:62:75:bd:a9: 3f:f7:d9:ab:17:9c:1a:d2:4d:87:94:3f:f1:c6:12: 91:6c:0d:b2:cd:86:d8:e0:62:49:89:ec:35:ca:12: 0b:c8:52:30:5c:ec:a6:8a:f8:42:94:a2:f0:b6:a3: fe:a5:44:38:34:0d:ec:3e:7e:fb:af:d3:db:e7:e1: 6c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:FB:D8:4A:37:CA:41:4C:B2:64:7A:9D:5A:B8:82:5E:B9:3A:1B:C6 X509v3 Authority Key Identifier: keyid:3B:49:B8:7A:3F:F3:89:63:4C:7D:09:0D:76:DA:EA:A9:6F:EE:FD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/fvvYSjfKQUyyZHqdWriCXrk6G8Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.189.132.0/23 Signature Algorithm: sha256WithRSAEncryption 57:1c:cd:73:db:d1:ab:2e:24:37:50:de:72:fd:38:c2:3e:0b: c3:8e:88:63:1d:ec:dc:10:2f:f1:3f:ad:f5:7b:7c:ff:09:ac: a3:c0:b2:65:ef:00:5f:65:d9:36:b5:37:1e:df:46:a4:3a:c1: 90:4e:b1:94:e2:28:45:5b:85:eb:cf:b5:15:38:38:fc:b8:d1: 46:20:a8:5e:3a:9a:9d:f9:4d:81:5f:a6:e1:d9:dc:57:71:e5: c2:0d:61:a4:2b:6e:fa:1d:3a:bc:a4:75:a3:fa:58:de:20:a7: 2c:02:1e:a9:7e:8b:75:ea:fd:d9:c6:74:26:5f:c2:91:c7:37: 66:6c:bc:37:1f:e5:98:b2:dd:fb:78:71:02:1e:ce:a3:a8:26: a7:06:f8:a3:0d:6e:db:c2:75:df:39:33:1f:f2:fb:54:31:54: b1:a5:de:ed:94:ff:51:fa:1f:7f:2a:f3:eb:bc:a1:f7:7f:6f: 68:da:92:78:a6:13:b5:96:6c:86:8e:fd:df:8d:12:09:de:ed: 64:64:9a:7b:af:db:17:bf:55:e7:e5:4e:15:f9:ab:15:a3:60: 7b:70:dd:ba:a8:dd:22:2e:27:ff:c3:71:77:55:68:c6:0e:9f: a8:fa:c9:dd:88:6d:10:16:71:4e:c1:df:3e:28:b3:a8:af:dc: c7:a4:b0:ec -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDJMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0I0 OUI4N0EzRkYzODk2MzRDN0QwOTBENzZEQUVBQTk2RkVFRkQ5MDAeFw0yNTAyMTAx MzUwNDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdFRkJEODRBMzdDQTQx NENCMjY0N0E5RDVBQjg4MjVFQjkzQTFCQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWiSDctwUKcd+yYKkleGDyNkffn5QrJtUzje8xuYQGWnzkdti6 ycR4sXPvShkLLYR0BG73cVn0nvGyg6Faed8fOsiBnLk3c7oF1LSK9lRodc+5mNov ih0euWLsoLtB4/8MXCVJQoeRmkS4R4ZjQecCp/niRw2sqYKKCUbANL5yuDksJaB1 opeZwuoAA/dfXj0+qYm1SJwtSurEs/+0KJfhByp9leT7itYOCZfq9qQCws7y5ZG9 B5jG9rsgzb8dYnW9qT/32asXnBrSTYeUP/HGEpFsDbLNhtjgYkmJ7DXKEgvIUjBc 7KaK+EKUovC2o/6lRDg0Dew+fvuv09vn4Wx5AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUfvvYSjfKQUyyZHqdWriCXrk6G8YwHwYDVR0jBBgwFoAUO0m4ej/ziWNMfQkN dtrqqW/u/ZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNSRUUv TzBtNGVqX3ppV05NZlFrTmR0cnFxV191X1pBLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9PMG00ZWpfemlXTk1mUWtOZHRycXFXX3VfWkEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9OQ1JFRS9mdnZZU2pmS1FVeXlaSHFkV3Jp Q1hyazZHOFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ72E MA0GCSqGSIb3DQEBCwUAA4IBAQBXHM1z29GrLiQ3UN5y/TjCPgvDjohjHezcEC/x P631e3z/CayjwLJl7wBfZdk2tTce30akOsGQTrGU4ihFW4Xrz7UVODj8uNFGIKhe Opqd+U2BX6bh2dxXceXCDWGkK276HTq8pHWj+ljeIKcsAh6pfot16v3ZxnQmX8KR xzdmbLw3H+WYst37eHECHs6jqCanBvijDW7bwnXfOTMf8vtUMVSxpd7tlP9R+h9/ KvPrvKH3f29o2pJ4phO1lmyGjv3fjRIJ3u1kZJp7r9sXv1Xn5U4V+asVo2B7cN26 qN0iLif/w3F3VWjGDp+o+sndiG0QFnFOwd8+KLOor9zHpLDs -----END CERTIFICATE-----Generated at Wed Apr 23 09:06:58 2025 by rpki-client